Certified Ethical Hacker (CEH v13) — Question 57

As the lead security engineer for a retail corporation, you are assessing the security of the wireless networks in the company's stores. One of your main concerns is the potential for "Wardriving" attacks, where attackers drive around with a Wi-Fi-enabled device to discover vulnerable wireless networks. Given the nature of the retail stores, you need to ensure that any security measures you implement do not interfere with customer experience, such as their ability to access in-store Wi-Fi. Taking into consideration these factors, which of the following would be the most suitable measure to mitigate the risk of Wardriving attacks?

Answer options

• A. Limit the range of the store's wireless signals
• B. Implement MAC address filtering
• C. Disable SSID broadcasting
• D. Implement WPA3 encryption for the store's Wi-Fi network

Correct answer: D

Explanation

The correct answer is D because implementing WPA3 encryption significantly enhances the security of the wireless network, making it much harder for attackers to exploit. Options A, B, and C do not provide robust security measures; limiting the range might not prevent targeted attacks, MAC address filtering can be bypassed, and disabling SSID broadcasting can still leave the network vulnerable to detection by advanced tools.